DMARC Record Generator
Generate a DMARC TXT record to protect your domain from email spoofing and phishing. Configure your policy, reporting addresses, and subdomain rules.
Domain Policy
Choose how receiving servers should handle emails that fail DMARC checks.
Subdomain Policy
Optionally set a different policy for subdomains. Leave blank to inherit the domain policy.
Aggregate Report Email (rua)
Receive daily aggregate reports showing how your domain is being used across the internet.
Forensic Report Email (ruf)
Receive individual failure reports for each email that fails DMARC checks. Not all providers support forensic reports.
Percentage (pct)
Percentage of emails the DMARC policy applies to. Start low when first deploying quarantine or reject and gradually increase to 100%.
Your DMARC Record
Add this as a TXT record with the host _dmarc in your DNS settings.
v=DMARC1; p=noneDNS Record Type: TXT — Host: _dmarc
Why DMARC Matters
DMARC (Domain-based Message Authentication, Reporting, and Conformance) is the most effective way to prevent unauthorized use of your domain in email. Without DMARC, anyone can send emails that appear to come from your domain, damaging your brand reputation and enabling phishing attacks against your customers.
DMARC builds on top of SPF and DKIM by adding a policy layer. While SPF and DKIM provide authentication mechanisms, DMARC tells receiving servers what to do when those checks fail. It also provides reporting so you can see exactly who is sending email using your domain.
Google and Yahoo now require DMARC records for bulk senders. If you send more than 5,000 emails per day to Gmail or Yahoo recipients, a DMARC record is mandatory. Starting with a "none" policy and aggregate reporting is the safest way to begin.
Protect your sender reputation
DMARC protects your domain from spoofing. MailEntriX protects your sender reputation by removing invalid emails before they bounce.